Future rules and regulations (e.g. ISO / SAE DIS 21434) will effectively require automotive manufacturers to perform and document cyber security risk assessments for each product. Early indications are that, while these standards specify clearly the type of required work and explain the necessary outcomes, they cannot extend to very clear recommendations on how to perform the analysis on real-world projects and products.
The industry has an opportunity to come together early on to close this gap, and find not only joint interpretations of these specifications, but to also
share the costs and burden of complexity in its implementation.
Join us early in taking the first steps toward a concrete Security Evaluation Framework for inter-connected interactive automotive systems, based on
ISO/SAE DIS 21434. This workshop provides a platform to discuss how to best organize joint work on the various aspects of security risk assessments.
Joint work can result in a common framework including generic threat/control catalogs, guidelines, interpretations and more.